Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3791B0F7B9B0A0F44434E8FDED11277147ED16CD9781BE55AC801FE3EFFFA896/0/323830333a376332303a3a2f33322d3438203d3e20323634363638.roa
File: 323830333a376332303a3a2f33322d3438203d3e20323634363638.roa (raw, json)
Hash identifier: k6yL/US+awk3+VVgzBJDXax9uopZ0fjz8ODhTFNaqKA=
Subject key identifier: 96:55:F7:D6:06:25:CA:4E:A7:77:77:DD:05:86:F8:94:3B:7E:55:E5
Certificate issuer: /CN=DAADFF1BE65A83E411EFC02ED029233890DD0646
Certificate serial: 52CA9DBFCB7FF086ACBEE270FFF08BFE4F2300CA
Authority key identifier: DA:AD:FF:1B:E6:5A:83:E4:11:EF:C0:2E:D0:29:23:38:90:DD:06:46
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DAADFF1BE65A83E411EFC02ED029233890DD0646.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3791B0F7B9B0A0F44434E8FDED11277147ED16CD9781BE55AC801FE3EFFFA896/0/323830333a376332303a3a2f33322d3438203d3e20323634363638.roa
Signing time: Tue 04 Feb 2025 18:46:14 +0000
ROA not before: Tue 04 Feb 2025 18:41:14 +0000
ROA not after: Tue 03 Feb 2026 18:46:14 +0000
asID: 264668
IP address blocks: 2803:7c20::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:ca:9d:bf:cb:7f:f0:86:ac:be:e2:70:ff:f0:8b:fe:4f:23:00:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DAADFF1BE65A83E411EFC02ED029233890DD0646
Validity
Not Before: Feb 4 18:41:14 2025 GMT
Not After : Feb 3 18:46:14 2026 GMT
Subject: CN=9655F7D60625CA4EA77777DD0586F8943B7E55E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ae:27:84:c6:c2:be:44:e9:96:8e:03:ae:37:
fc:de:2a:48:86:ec:77:28:c8:f3:65:bb:22:44:28:
2c:e0:c2:df:6a:07:ff:72:36:66:23:8a:6b:46:58:
e2:d1:7d:0e:a2:9b:4f:b5:25:e3:7f:ec:a4:28:71:
5a:a6:18:4c:97:bf:df:a7:51:e2:f2:29:96:66:5f:
30:6a:15:da:63:ec:a6:ce:65:9e:a2:a1:5c:f6:c5:
61:02:4f:82:f4:e4:8c:92:1a:27:2a:33:4a:5d:fd:
ef:88:ca:f8:cc:e4:dd:66:14:70:85:7c:a0:ea:4d:
65:dd:f4:7f:0d:2e:53:a1:5c:7e:42:dd:c0:b9:f9:
8b:74:68:83:c7:4a:b0:bd:44:e0:47:08:b1:af:be:
ad:18:67:9d:8c:45:76:54:b2:01:b7:e6:1d:aa:d4:
27:18:b9:97:7b:08:88:b9:84:aa:cd:50:62:b1:47:
9e:04:80:f9:9b:28:dc:55:df:9f:d3:a1:1a:f2:3d:
d0:2d:6a:ae:06:97:03:7d:9f:1c:b5:dc:db:6e:ba:
7a:5b:03:8a:f3:a0:d4:90:27:b9:94:8b:53:d0:93:
bb:0c:00:ca:50:29:a0:c3:9f:b1:0b:b7:5d:cc:37:
71:80:86:56:0b:70:65:f4:31:8d:70:3e:1f:27:a9:
4b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:55:F7:D6:06:25:CA:4E:A7:77:77:DD:05:86:F8:94:3B:7E:55:E5
X509v3 Authority Key Identifier:
keyid:DA:AD:FF:1B:E6:5A:83:E4:11:EF:C0:2E:D0:29:23:38:90:DD:06:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3791B0F7B9B0A0F44434E8FDED11277147ED16CD9781BE55AC801FE3EFFFA896/0/DAADFF1BE65A83E411EFC02ED029233890DD0646.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DAADFF1BE65A83E411EFC02ED029233890DD0646.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3791B0F7B9B0A0F44434E8FDED11277147ED16CD9781BE55AC801FE3EFFFA896/0/323830333a376332303a3a2f33322d3438203d3e20323634363638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:7c20::/32
Signature Algorithm: sha256WithRSAEncryption
6c:c3:74:d7:71:79:43:2f:f5:b5:3a:c6:cd:3f:76:48:ac:03:
91:c0:ac:1f:44:21:a3:d7:7a:69:b4:ef:6e:3f:ba:d1:63:d7:
6e:e9:f2:7b:22:43:ea:1b:d3:db:e0:47:7a:4f:29:29:4d:9c:
93:7f:dd:45:a9:e2:5c:31:0c:b7:3f:f6:e5:7e:b9:2e:95:6a:
be:50:05:87:95:19:e0:7b:07:f9:0d:16:3e:f5:3d:8e:19:27:
77:00:f5:84:02:06:1f:82:a2:79:be:c4:13:fe:f4:57:b8:d8:
be:6b:74:df:e3:2e:46:07:08:0b:11:49:13:1c:e5:ec:9c:99:
26:d0:04:94:1e:bf:cd:24:72:49:29:44:6c:6d:75:0a:e3:a9:
9c:3a:0e:cd:56:1e:c2:de:1b:dd:95:76:75:81:5c:40:50:d6:
86:7d:33:5c:de:16:00:31:a7:a2:4e:9d:89:91:e5:47:60:da:
7b:7a:71:55:d7:fe:da:ce:3a:25:64:57:12:fc:aa:bf:96:4f:
03:ca:96:14:4b:ab:6c:c1:a1:4c:52:50:91:81:e1:f9:d2:b1:
24:f3:44:fd:bc:41:b6:bf:04:b1:02:a7:7f:cc:12:71:5e:1a:
c5:ce:b2:b2:94:4d:d2:14:e9:85:8a:d7:ff:e1:38:ee:b5:f8:
e1:0c:cb:da
-----BEGIN CERTIFICATE-----
MIIFvzCCBKegAwIBAgIUUsqdv8t/8IasvuJw//CL/k8jAMowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoREFBREZGMUJFNjVBODNFNDExRUZDMDJFRDAyOTIzMzg5
MEREMDY0NjAeFw0yNTAyMDQxODQxMTRaFw0yNjAyMDMxODQ2MTRaMDMxMTAvBgNV
BAMTKDk2NTVGN0Q2MDYyNUNBNEVBNzc3NzdERDA1ODZGODk0M0I3RTU1RTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7rieExsK+ROmWjgOuN/zeKkiG
7HcoyPNluyJEKCzgwt9qB/9yNmYjimtGWOLRfQ6im0+1JeN/7KQocVqmGEyXv9+n
UeLyKZZmXzBqFdpj7KbOZZ6ioVz2xWECT4L05IySGicqM0pd/e+IyvjM5N1mFHCF
fKDqTWXd9H8NLlOhXH5C3cC5+Yt0aIPHSrC9ROBHCLGvvq0YZ52MRXZUsgG35h2q
1CcYuZd7CIi5hKrNUGKxR54EgPmbKNxV35/ToRryPdAtaq4GlwN9nxy13Ntuunpb
A4rzoNSQJ7mUi1PQk7sMAMpQKaDDn7ELt13MN3GAhlYLcGX0MY1wPh8nqUtlAgMB
AAGjggLJMIICxTAdBgNVHQ4EFgQUllX31gYlyk6nd3fdBYb4lDt+VeUwHwYDVR0j
BBgwFoAU2q3/G+Zag+QR78Au0CkjOJDdBkYwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zNzkxQjBGN0I5QjBBMEY0NDQzNEU4RkRFRDExMjc3MTQ3
RUQxNkNEOTc4MUJFNTVBQzgwMUZFM0VGRkZBODk2LzAvREFBREZGMUJFNjVBODNF
NDExRUZDMDJFRDAyOTIzMzg5MEREMDY0Ni5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EQUFERkYxQkU2NUE4M0U0MTFF
RkMwMkVEMDI5MjMzODkwREQwNjQ2LmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMzc5MUIwRjdCOUIwQTBGNDQ0MzRFOEZERUQxMTI3NzE0N0VEMTZDRDk3
ODFCRTU1QUM4MDFGRTNFRkZGQTg5Ni8wLzMyMzgzMDMzM2EzNzYzMzIzMDNhM2Ey
ZjMzMzIyZDM0MzgyMDNkM2UyMDMyMzYzNDM2MzYzOC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACgDfCAw
DQYJKoZIhvcNAQELBQADggEBAGzDdNdxeUMv9bU6xs0/dkisA5HArB9EIaPXemm0
724/utFj127p8nsiQ+ob09vgR3pPKSlNnJN/3UWp4lwxDLc/9uV+uS6Var5QBYeV
GeB7B/kNFj71PY4ZJ3cA9YQCBh+Conm+xBP+9Fe42L5rdN/jLkYHCAsRSRMc5eyc
mSbQBJQev80kckkpRGxtdQrjqZw6Ds1WHsLeG92VdnWBXEBQ1oZ9M1zeFgAxp6JO
nYmR5Udg2nt6cVXX/trOOiVkVxL8qr+WTwPKlhRLq2zBoUxSUJGB4fnSsSTzRP28
Qba/BLECp3/MEnFeGsXOsrKUTdIU6YWK1//hOO61+OEMy9o=
-----END CERTIFICATE-----
Generated at Sat Apr 5 14:04:54 2025 by rpki-client